Challenge 1

Implement Private DNS Names and Private DNS Resolver

Challenge 2 - Task 1 of 5

Deploy a Serverless Function and Access Using an API Gateway

Deployment in OCI

Scenario

You have joined ACME as their new Cloud Solutions Architect. Your organization wants to verify if
they can execute their microservices deployed as serverless functions on another cloud provider
using Oracle Functions in OCI.

Preconfigured

To complete this requirement, you are provided with the following:

• Access to an OCI Tenancy, an assigned compartment, and OCI credentials.
• Access to Cloud Shell to execute the Fn CLI and Docker commands.
• Code for a sample Python function, ExamFunction-main.zip.
• Permissions to perform only the tasks within the challenge.

Note: Throughout your exam, ensure to use assigned Compartment99248134-

C01 and Region us-ashburn-1

Complete the following tasks in the provisioned OCI environment:

1. Create a new VCN with the name exam-vcn within your assigned compartment by using the
Start VCN Wizard.
2. Create a new Oracle Functions application named exam-app within your assigned
compartment by using the private subnet in your previously created VCN.

Ensure you use all defaults provided with the Create VCN with Internet Connectivity option.
Challenge 2 - Task 2 of 5

Deploy a Serverless Function and Access Using an API Gateway

Deployment in OCI

Scenario

You have joined ACME as their new Cloud Solutions Architect. Your organization wants to verify if
they can execute their microservices deployed as serverless functions on another cloud provider
using Oracle Functions in OCI.

Preconfigured

To complete this requirement, you are provided with the following:

• Access to an OCI Tenancy, an assigned compartment, and OCI credentials.
• Access to Cloud Shell to execute the Fn CLI and Docker commands.
• Code for a sample Python function, ExamFunction-main.zip.
• Permissions to perform only the tasks within the challenge.

Note: Throughout your exam, ensure to use assigned Compartment 99248134-

C01and Region us-ashburn-1

Complete the following task:

In the field below, write an IAM policy statement that allows API Gateway to access Oracle Functions
in your compartment.

Challenge 2 - Task 3 of 5

Deploy a Serverless Function and Access Using an API Gateway

Deployment in OCI

Scenario
You have joined ACME as their new Cloud Solutions Architect. Your organization wants to verify if
they can execute their microservices deployed as serverless functions on another cloud provider
using Oracle Functions in OCI.

Preconfigured

To complete this requirement, you are provided with the following:

• Access to an OCI Tenancy, an assigned compartment, and OCI credentials.
• Access to Cloud Shell to execute the Fn CLI and Docker commands.
• Code for a sample Python function, ExamFunction-main.zip.
• Permissions to perform only the tasks within the challenge.

Note: Throughout your exam, ensure to use assigned Compartment 99248134-

C01and Region us-ashburn-1

Complete the following tasks in the provisioned OCI environment:

Create a new private repository in the Container Registry named {username}/hello-

pythonwithin your assigned compartment.

For example: If your user name is 99346163-lab.user02, then name the registry as 99346163-
lab.user02/hello-python.

Your username is 99248134-lab.user01

Challenge 2 - Task 4 of 5

Deploy a Serverless Function and Access Using an API Gateway

Deployment in OCI

Scenario

You have joined ACME as their new Cloud Solutions Architect. Your organization wants to verify if
they can execute their microservices deployed as serverless functions on another cloud provider
using Oracle Functions in OCI.

Preconfigured

To complete this requirement, you are provided with the following:

 • Access to an OCI Tenancy, an assigned compartment, and OCI credentials.
• Access to Cloud Shell to execute the Fn CLI and Docker commands.
• Code for a sample Python function, ExamFunction-main.zip.
• Permissions to perform only the tasks within the challenge.

Note: Throughout your exam, ensure to use assigned Compartment 99248134-

C01 and Region us-ashburn-1

Complete the following tasks in the provisioned OCI environment:

1. Set up the context for Fn CLI and deploy the python function to exam-app.
a. Set up the Fn CLI context in Cloud Shell
i. Set your region and your assigned compartment
ii. Set your registry [repo-name-prefix], which must
be: [region_key].ocir.io/[tenancy-name]/{username}
For example, if your tenancy is ocuocictrng19, user name is 99346163-
lab.user02 and region is US East Ashburn, your registry must
be iad.ocir.io/ocuocictrng19/99346163-lab.user02.

Your username is 99248134-lab.user01

Your tenancy is ocuocictrng16

b. Login to the registry using docker login, which will require you to generate and use
an Auth Token
c. Use wget https://objectstorage.us-ashburn-
1.oraclecloud.com/n/ocuocictrng5/b/PBT_Storage/o/ExamFunction-main.zipto
upload the zip archive containing the Python function files to Cloud Shell.
d. Extract the files by using the unzip utility and navigate to the python sub-folder
e. Deploy the python function to the exam-app using an fn command
f. Invoke the function at least 2 times using an fn command

Challenge 2 - Task 5 of 5

Deploy a Serverless Function and Access Using an API Gateway

Deployment in OCI

Scenario
You have joined ACME as their new Cloud Solutions Architect. Your organization wants to verify if
they can execute their microservices deployed as serverless functions on another cloud provider
using Oracle Functions in OCI.

Preconfigured

To complete this requirement, you are provided with the following:

• Access to an OCI Tenancy, an assigned compartment, and OCI credentials.
• Access to Cloud Shell to execute the Fn CLI and Docker commands.
• Code for a sample Python function, ExamFunction-main.zip.
• Permissions to perform only the tasks within the challenge.

Note: Throughout your exam, ensure to use assigned Compartment 99248134-

C01 and Region us-ashburn-1

Having deployed a private function to an Oracle Functions application in OCI as proof-of-concept,

demonstrate that it can be invoked via a public API Gateway deployment. Before you proceed
further, ensure that you have created the following resources:

• An OCI VCN in your compartment for hosting the API Gateway2

 • The hello-python function deployed to a Functions application in your compartment

Complete the following tasks in the provisioned OCI environment:

1. Create a new public API Gateway in your compartment named exam-gateway.

2. Create a new API Deployment named exam-deployment using /v1 as the path prefix
in exam-gateway.
3. Create a new route by using /hello as the path and GET as the method. The route must
invoke the hello-python function.
4. Create a new stateful CIDR Ingress Rule that allows for TCP HTTPS traffic (port 443) from all
IP addresses and ports in the default Security List for exam-vcn.
5. Use curl to call the function via your API Gateway deployment.

curl -k -X GET {deployment-endpoint}/hello

 Multiple Choice Questions

1) As a part of a migration exercise for an existing on-premises application to Oracle Cloud

Infrastructure (OCI), you are required to transfer a 7 TB file to OCI Object Storage. You have
decided to upload it using the multipart upload functionality of Object Storage.
Which two statements are true? (Choose two.)
A. It is possible to split this file into multiple parts using rclone tool provided by Object Storage.
B. Contiguous numbers need to be assigned for each part so that Object Storage constructs the
object by ordering part numbers in ascending order.
C. After initiating a multipart upload by making a CreateMultiPartUpload REST API Call, the
upload remains active until you explicitly commit it or about it.
D. It is possible to split this file into multiple parts using the APIs provided by Object Storage.
E. Active multipart upload can be checked by listing all parts that have been uploaded, however
it is not possible to list information for an individual object part in an active multipart upload.

2. You designed and deployed your Autonomous Data Warehouse (ADW) so that it is
accessible from your on-premise data center and servers running on both private and public
networks in Oracle Cloud Infrastructure (OCI).

As you are testing the connectivity to your ADW database from the different access paths, you
notice that the server running on the private network is unable to connect to ADW.
Which two steps do you need to take to enable connectivity from the server on the private network to
ADW? (Choose two.)

• A. Add an entry in the Security List of the ADW allowing ingress traffic for CIDR block
10.2.2.0/24
• B. Add an entry in the route table (associated with the private subnet) with destination of
0.0.0.0/0; target type of NAT Gateway, add a stateful egress rule to the security list (associated
with the private subnet) with destination of 0.0.0.0/0 and for all IP protocols.
• C. Add an entry in the access control list of ADW for IP address 129.146.160.11
• D. Add an entry in the route table (associated with the private subnet) with destination of
0.0.0.0/0; target type of Internet Gateway, add a stateful egress rule to the security list
(associated with the private subnet) with destination of 0.0.0.0/0 and for all IP protocols.
• E. Add an entry in the access control list of ADW for CIDR block 10.2.2.0/24.

3.You are running a mission-critical database application in Oracle Cloud Infrastructure (OCI).
You regular backups of your DB system to OCI Object Storage. Recently, you notice a failed
database back status in the console. • Ensure that the database is not active and running while
the backup is in progress.
What troubleshooting action can you perform to determine the cause of the backup failure?

• Ensure that the dcsagent program is not restarted in case of a stop/waiting status.
• Ensure the database archiving mode is set to NOARCHIVELOG.
• Ensure that your database host can connect to OCI Object Storage.

4. A company runs a public-facing application that uses a Java-based web service via a
RESTful API in their on-premises data center. Use of the API is expected to double with a new
product launch. The business wants to migrate their application to Oracle Cloud Infrastructure
(OCI) to meet the scale and reliability requirements. In order to achieve this, they will divert only
40% of the traffic to the new Apache Tomcat web servers running on OCI and serve the
remaining 60% traffic through their on-premises infrastructure. Once the migration is complete
and application works fine, they will divert all traffic to OCI.

How can these requirements be met with the LEAST amount of effort?

A Use OCI Traffic management service with failover steering policy and distribute the traffic
between OCI and on premises infrastructure.
B Use OCI Traffic management service with Load Balancing steering policy and distribute the
traffic between OCI and on premises infrastructure.
C Use an OCI load Balancer and distribute the traffic between OCI and on premises
infrastructure.
D Use VPN connectivity between on premises Infrastructure and OCI and create routing tables
to distribute the traffic between them.
5. You are working as a solution architect with a global automotive provider who is looking to
create a multi-cloud solution. They want to run their application tier in • Deploy the Oracle
database system into a public subnet in your VCN and assign a public IP address. Connect your
application tier running in Azure to the public IP address of the database system over the
internet.

Microsoft Azure while utilizing the Oracle DB Systems in the Oracle Cloud Infrastructure (OCI).
What is the most-fault tolerant and secure solution for this customer? (Choose the best answer.)

• Create a FastConnect virtual circuit with Microsoft Azure as the provider to establish a private
interconnect between the application tier running in the Azure Virtual Network and the OCI VCN
that contains the Oracle Databases.
• Create an encrypted, Virtual Private Network connection between the Microsoft Azure Virtual
Network that contains the application tier and the OCI Virtual Cloud Network (VCN) that
contains the Oracle Databases.
• Use an OCI Virtual Cloud Network remote peering connection to create a remote network
connection between the application tier running in Microsoft Azure Virtual Network and Oracle
Databases running in the OCI Virtual Cloud Network (VCN).

6. A company has an urgent requirement to migrate 300 TB of data to Oracle Cloud

Infrastructure (OCI) in two weeks. Their data center has been recently struck by a massive
hurricane and the building has been badly damaged, although still operational. They have a 100
Mbps Internet line but the connection is intermittent due to the damages caused to the electrical
grid.

In this scenario, what is the most effective service to use to migrate the data to OCI given the
time constraints? (Choose the best answer.)

• Use multiple OCI Data Transfer Appliances to transfer data to OCI.

• Setup an OCI Storage Gateway to connect your data center and your VCN. Once the
connection has been established, upload all data to OCI.
• Setup a hybrid network by launching a 1Gbps FastConnect virtual circuit between your data
center and OCI. Use OCI Object Storage multipart upload tool to automate the migration of your
data to OCI.
• Setup an OCI Storage Gateway to connect your data center and your VCN. Once the
connection has been established, upload all data to OCI using OCI Storage Gateway Cloud
Sync tool.
• Upload the data to OCI using OCI Object Storage multipart upload tool.

7. Your company needs to migrate a business critical application from your data center to
Oracle Cloud Infrastructure (OCI). The application runs on Oracle • Deploy Virtual Machine RAC
DB system on OCI and use the Oracle Database Backup module with RMAN to migrate the
data from customer on-premises to OCI. The application server is WebLogic server running on
multiple 4-core servers and the database is deployed as an Oracle Database Enterprise Edition
RAC database on 2 servers (4-cores each). Which method of database migration should you
choose so that the application has minimal impact? (Choose the best answer.)
• Deploy Virtual Machine RAC DB system on OCI and use the ZDM tool for the database
migration.
• Deploy Autonomous Transaction Processing Database on OCI and use the MV2ADB tool for
the database migration.
• Deploy Exadata Cloud Service Base rack and use Oracle Data Pump tool to migrate the data
from customer on-premises to OCI.

8. A large E-commerce company is looking to run seasonal workloads in Oracle Cloud

Infrastructure. The Oracle database used by their E-commerce application can use up to 52
cores at peak workloads. Due to the seasonal nature of the business, the database will be not
be used for 10 months in a year and can also be shut down during non-business hours.

• A Autonomous Transaction Processing with shared Exadata infrastructure

• B Oracle Cloud Infrastructure Exadata DB Systems
• C Oracle Cloud Infrastructure Virtual Machine DB Systems
• D Oracle Cloud Infrastructure Bare Metal DB Systems